Results 1 to 1 of 1

Thread: ICQ Pro 2003b "MCRegEx__Search" Buffer Overflow Vulnerability

Thread Tools
Display
- Linear Mode
- Switch to Hybrid Mode
- Switch to Threaded Mode

09-08-2006, 09:11 AM #1
F1

View Profile

View Forum Posts

Private Message

Guest Admin
Join Date

Aug 2006

Location

Orlando FL

Age

70

Posts

1,316
ICQ Pro 2003b "MCRegEx__Search" Buffer Overflow Vulnerability

Core Security Technologies has reported a vulnerability in ICQ Pro 2003b, which can be exploited by malicious people to compromise a user's system.

The vulnerability is caused due to a boundary error in the "MCRegEx__Search()" function in the processing of messages with a certain type. This can be exploited to cause a heap-based buffer overflow by specifying an incorrect length value in a message sent to the client.

Successful exploitation allows execution of arbitrary code.

The vulnerability has been reported in build 3916. Other versions may also be affected.

Secunia Security

Vanishing Point

Reply With Quote

Quick Navigation News Network Top

« Previous Thread | Next Thread »

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
[VIDEO] code is On
HTML code is Off

All times are GMT -5. The time now is 09:59 AM.

Powered by vBulletin® Version 4.2.1
Copyright © 2026 vBulletin Solutions, Inc. All rights reserved.